Subject: | keyHash = md5($pepper. |
Summary: | Package rating comment |
Messages: | 2 |
Author: | Filip Oscadal |
Date: | 2016-01-21 14:38:02 |
|
|
|
Filip Oscadal rated this package as follows:
Utility: | Bad |
Consistency: | Not sure |
Documentation: | Not sure |
Examples: | Not sure |
|
Filip Oscadal - 2016-01-21 14:38:02
keyHash = md5($pepper.$key.$salt);
MD5 in 2016?? are you kidding me?
Dave Smith - 2016-01-21 15:12:31 - In reply to message 1 from Filip Oscadal
There is nothing wrong with md5 if you do not need a strong hash and speed is more important. It is using salts and peppers so that it is more secure than md5 alone.
You must have missed that the package also provides methods for stronger hashes, using current hashing tech, if needed.
Really... no kidding :)
Dave
|